Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Should You Change Your Passwords Regularly?
Message
<blockquote data-quote="kC77" data-source="post: 984125" data-attributes="member: 92796"><p>I dont envy you, but you are doing a good job!</p><p></p><p>thats the problem with not very techy people, they use the same password among so many sites, (including their bank!) and when they eventually do come to change it as they had a warning it has expired... i can guarantee you they will use the same password with a 1 at the end or something..... then they say its all too confusing that some sites use password and some use password1. then they have password22</p><p>also you've then got parents trying to setup and remember stuff for their younger kids who may end up sharing a password of somekind... recipe for disaster.</p><p></p><p>for a general user the web seems very simple... i've even told friends and family to not re-use passwords etc, and how common it is that siteA will get breached.... and mean your details for siteB, siteC & siteD are at risk and probably on a list somewhere on the darkweb.</p><p></p><p>No i dont reset 400+ random passwords every 90 days no matter if that is loathers best practice,</p><p>90days was best practice back in the day with AD, and even then go back to my previous point, people would usually just add a 1 or a 2 to the end of the password.</p><p></p><p>be sure to use minimum 12 chars, 2FA on anything that important, make sure that 2FA is not SMS, make sure its app/token based.</p><p>be sure its different password for every individual site...... no major damage can ever be done with any breach.</p><p></p><p>any site that is critical be sure to note down recovery codes in your keepass or pw manager db (or a second db just for recovery)</p></blockquote><p></p>
[QUOTE="kC77, post: 984125, member: 92796"] I dont envy you, but you are doing a good job! thats the problem with not very techy people, they use the same password among so many sites, (including their bank!) and when they eventually do come to change it as they had a warning it has expired... i can guarantee you they will use the same password with a 1 at the end or something..... then they say its all too confusing that some sites use password and some use password1. then they have password22 also you've then got parents trying to setup and remember stuff for their younger kids who may end up sharing a password of somekind... recipe for disaster. for a general user the web seems very simple... i've even told friends and family to not re-use passwords etc, and how common it is that siteA will get breached.... and mean your details for siteB, siteC & siteD are at risk and probably on a list somewhere on the darkweb. No i dont reset 400+ random passwords every 90 days no matter if that is loathers best practice, 90days was best practice back in the day with AD, and even then go back to my previous point, people would usually just add a 1 or a 2 to the end of the password. be sure to use minimum 12 chars, 2FA on anything that important, make sure that 2FA is not SMS, make sure its app/token based. be sure its different password for every individual site...... no major damage can ever be done with any breach. any site that is critical be sure to note down recovery codes in your keepass or pw manager db (or a second db just for recovery) [/QUOTE]
Insert quotes…
Verification
Post reply
Top